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Reply to Office action of 3/7/05 

REMARKS/ARGUMENTS 

Reconsideration of the application is requested. 

Claims 1-6 remain in the application. Claims 1-6 have been 
amended . 

To further clarify the present invention and distinguish it 
over the references, independent claims 1, 3 and 5 have been 
amended to more clearly differentiate between the terms 
"authentication code** and "access authorization." The 
authentication codes serve the authentication of the users 
whereas the access authorizations make possible the access to 
the respective service. The amended language now more clearly 
distinguishes the instant claims from the cited prior art. 

In item 8 on page 2 of the above- identified Office Action, the 
Examiner objected to claims 2, A, and 6 because of an 
informality in each claim. The Examiner's suggested 
corrections have been taken into account and appropriate 
changes have been made. More specifically, the language now 
reads ^'at least one of the users" so that there is proper 
antecedent basis in the independent claims from which the 
claims depend. 
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In item 10 on page 4 of the above- identified Office Action, 
claims 1 and 5 have been rejected as being anticipated by 
Newton et al. (US 5,771,291 A) (hereinafter "Newton") under 35 
U,S.C. § 102 (b> . 

The rejection has been noted and the claims have been amended 
in an effort to even more clearly define the invention of the 
instant application. Support for the changes is found in the 
original claims and on page 3, line 5 to page 5, line 15 of 
the specification of the instant application. 

Before discussing the prior art in detail, it is believed that 
a brief review of the invention as claimed, would be helpful. 
Claim 1 calls for, inter alia, a method of authenticating 
users for using a multiplicity of services each being callable 
via a defined access authorisation, by: 

providing an authentication server and storing in the 
authentication server at least one access authorization for 
each of the services; 

storing a multiplicity of authentication codes assigned to 
users in the authentication seirver; 
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assigning each authentication code to the access authorization 
oz^ authorizations for the at least one service able to be used 
by the user; and 

upon receiving a request for a given service, carrying out 
authentication with the authentication server by comparing a 
received authentication code with the authentication codes 
stored in the authentication server and, if the comparison 
leads to a positive comparison result, setting up with the 
authentication server a connection to the requested service 
using the stored access authorization having the assigned 
authentication, (emphasis added) 

Regarding the Examiner's contments imder "Response to 
Arguments" on page 3 in the above -identified Office Action, 
amended independent claims 1, 3, and 5 positively recite the 
feature that the authentication server sets up the connection 
to the required service using the access authorization stored 
in the respective authentication server. This feature was 
impliedly set forth in the previous claims by the recitation 
that a defined access authorization is required for the 
respective services (see the language in previous claims 1, 3 
and 5 "each being callable via a defined access authorization" 
and that the access authorizations for the services are stored 
in the authentication server. For example, claim 1 recites 
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'^providing an authentication server and storing in the 
authentication server at least one access authorization for 
each of the services." This feature is not shovm in Newton. 
In Newton, only user specific access key codes are stored in 
the data bank of the server, and not access authoriisations for 
services. Therefore^ in Newton, there is no automatic 
connection setup to a service using an access authorization 
for the service as there is according to the present 
invention- 

Claim 1 recites a method of authenticating users for using a 
multiplicity of services, which are each called via a defined 
access authorization. To the contrary, Newton discloses a 
method for securely accessing a host computer (in Newton, 
e,g,, see claim 1, col, 10, lines 54-59, which recites "A 
method of providing user identification key codes in a manner 
providing secure access from a remote computer terminal to a 
database or server transaction program stored on a host 
computer, ♦ . " ) . 

Claim 1 of the instant application recites at least one access 
authorization is stored in the authentication server for each 
of the services. Newton does not even mention access 
authorization codes for a service. Instead, in Newton, only 
uses specific access key codes that are stored, which the 
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users require for accessing the server. Their function may be 
considered to correspond to the authentication codes of the 
present invention. However, the access authorizations in the 
method of claim 1 of the instant application serves for 
controlling the access to a service, or making access possible 
after the access to the authentication server by the user has 
already taken place by using the authentication codes, which 
is not shown in Newton. In Newton, only the access to the 
server itself is controlled via the user specific access key 
codes. See Newton's Fig. 1 ("check user access key code 
against database of individual user access key codes") as well 
as in Newton's specification, which only discloses user 
specific access key codes. Newton does not disclose access 
authorizations for the services according to the method of the 
claims of the instant application. This also applies to the 
paragraph in column 3, lines 22-28 of Newton, which is 
referred to in the Office Action and expressly states that the 
user specific access key codes stored in the server are used 
for adjusting (balancing) the access key codes transmitted by 
the users ("The user program then transmits the user's 
individual access key code (which optionally may be encrypted) 
over a communication network or over a telephone network to 
the host computer or server, which will be appropriately 
programmed to check the user's access key code against the 
registry of stored authorized individual user access key 
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codes.") Thus, it is apparent that Newton does not show tine 
previously described first method step in claim 1 of the 
instant application. 

The second method step of claim 1 of the instamt application 
("storing a multiplicity of authentication codes assigned to 
users in the authentication server") corresponds to storing 
user specific access key codes in Newton. 

According to the third method step of claim 1 of the instant 
application ("assigning each authentication code to the access 
authorization or authorization for at least one service able 
to be used by the user") , the authentication codes are 
assigned to the access authorization or the access 
authorisation of those services, which are available for the 
respective user. Newton does not show a corresponding step 
since no access authorization at all is stored in the server 
for a seirvice. In Newton, there are only user specific access 
key codes, which, as previously discussed, correspond to the 
authentication codes of the present invention. Access 
authorizations for a service are not even mentioned in Newton, 
The use of the different terms "'user access key code", 
''authentication access codes" and ''user's access code/user's 
authentication code" in the Office Action are misleading in 
connection with Newton's disclosure. In Newton, for example, 
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in column 2, lines 46-52, the terms "individual user access 
codes" and "individual user access key codes" are used as 
synonyms. Even column 3, lines 16-28 of Newton, to which the 
Examiner expressly refers, lacks any disclosure or teaching 
that user specific access key codes are assigned to access 
authorizations for a service as recited in the present claims. 

Regarding the last recited step in claim 1 of the instant 
application (^*upon receiving a request for a given service, 
carrying out authentication with the authentication server by 
comparing a received authentication code with the 
authentication codes stored in the authentication server and, 
if the comparison leads to a positive comparison result, 
setting up with the authentication seirver a connection to the 
requested service using the stored access authorization for 
the service having the assigned authentication code"), Newton 
. disclose that only a connection to the server is established, 
whereas in the method according to the present invention, a 
connection to the requested service is established by the 
authentication server after establishing a connection to the 
authentication server* According to instant claim 1, the 
access authorization stored in the authentication server is 
used for the service . 

Thus, it is apparent that claim 1 of the instant application 
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patentably distinguishes over Newton, There is no disclosure 
or teaching in Newton of the steps recited in claim 1 of ttie 
instant application, in particular the storage of access 
authorizations for services in the authentication server. 

With reference to claim 5 of the instant application, in 
addition to access authorizations for each service, the claim 
recites that authentication codes are stored in a memory of 
the authentication server. To the contrary, column 3, lines 
4 7-65 of Newton only suggest, generally, examples for 
transactions, which the server can perform in connection with 
the method disclosed in Newton. In Newton's method, no 
further autfiorization for the respective transaction is 
required for performing one of the transactions, which are 
apparently located on the server itself, since an appropriate 
access authorization is not shown or suggested. In 
particular, Newton shows no storage of access authorizations 
for a service or several services in the server. Even in 
column 1, lines 65-67 and column 2, lines 1-21, cited in the 
Office Action, only ^'identif ication keys", "^long 
identification keys" or a combination thereof is mentioned, 
which are stored in the server. These, however, are only user 
specific access key codes, which control the access to the 
server. Contrary thereto, according to the present invention 
the connection to the requested service is performed- by the 
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device by using the access authorization of the service stored 
in the storage of the authentication server, as previously 
explained above in connection Newton's claim 1. The access 
authorization in question is the one which is assigned to the 
authentication code of the user. 

Thus, as previously discussed, claim 5 of the instant 
application patentably distinguishes over Newton* 

Newton does not show ^a method of authenticating users for 
using a multiplicity of services each being callable via a 
defined access authorization", "providing an authentication 
server and storing in the authentication server at least one 
access authorization for each of the services", ^assigning 
each authentication code to the access authorization or 
authorizations for at least one service able to be used by the 
user; and upon receiving a request for a given service, 
carrying out authentication with the authentication server by 
comparing a received authentication code with the 
authentication codes stored in the authentication server and, 
if the comparison leads to a positive comparison result, 
setting up with the authentication server a connection to the 
requested service using the stored access authorization having 
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the assigned authentication" as recited in claim 1 of the 
instant application. Claim 5 has some of these limitations. 

In item 11 on page 7 of the above -identified Office Action, 
claims 2-4 and 6 have been rejected as being unpatentable over 
Newton in view of Lin et al • (US 5,999,610 A) {hereinafter 
'^Lin") under 35 U.S.C. § 103(a). 

The same comments made above in connection with claim 1 apply 
equally to claim 3. The Examiner's statement that the method 
according to Newton differs from the method according to claim 
3 of the instant application solely in that the network is an 
intelligent network (IN) and the services are services of the 
intelligent network is incorrect. Applicants submit that it 
is not obvious from Newton and Lin to store one or several 
access authorizations in the authentication server for each IN 
service, to assign authentication codes stored in the 
authentication server to the access authorization or to the 
access authorizations of a user, and to establish a connection 
to the required service in the case of positive comparison of 
the authentication codes received from the authentication 
server with the authentication codes stored in the 
authentication server as recited in claim 3. 

The last feature of claim 3 now expressly recites that the 
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connection to the requested service is established by using 
the access authorization for the service stored in the 
authentication server (namely/ "^upon receiving a request for a 
given IN service, carrying out authentication with the 
authentication server by comparing a received authentication 
code with the authentication codes stored in the 
authentication server and, if the comparison leads to a 
positive comparison result, setting up with the authentication 
server a connection to the requested service using the stored 
access authorization for the service the authentication code 
has been assigned to") , This feature is not shown in Newton 
and Lin, 

Thus, the claims of the instant application are believed to 
differ fundamentally from the methods and devices shown in 
Newton and Lin and define patentable invention over the 
combination of the references. 

It is accordingly believed to be clear that none of the 
references, whether taken alone or in any combination, either 
show or suggest the features of claim 1, 3, or 5 . Claims 1, 
3/ and 5 are, therefore, believed to be patentable over the 
art. The dependent claims are believed to be patentable as 
well because they all are ultimately dependent on claim l, 3, 
or 5 - 
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In view of the foregoing, reconsideration and allowance of 
claims 1-6 are solicited. 

In the event the Examiner should still find any of the claims 
to be unpatentable, counsel would appreciate receiving a 
telephone call so that, if possible, patentable language can 
be worked out. 

If an extension of time for this paper is required, petition 
for extension is herewith made* 

Please charge any other fees that might be due with respect to 
Sections 1,16 and 1,17 to the Deposit Account of Lerner and 
Greenberg, P,A., No, 12-1099. 

Respectfully submiLdted, 



F. D&nald Paris (24,054) 
FDP/bb 

May 31, 2005 

Lerner and Greenberg, P. A. 
Post Office Box 2480 
Hollywood, FL 33022-2480 
Tel: (954) 925-1100 
Faxi (954) 925-1101 
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